CVE-2016-10237

Summary

If shared content protection memory were passed as the secure camera memory buffer by the HLOS to a trusted application (TA) in all Android releases from CAF using the Linux kernel, the TA would not detect an issue and it would be treated as secure memory.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.All Qualcomm ProductsAll Android releases from CAF using the Linux kernelaffected

Weaknesses

  • Improper Input Validation in TrustZone

ADP Enrichment

CVE Program Container

Additional References

References